Vulnerabilities > CVE-2021-30328 - Reachable Assertion vulnerability in Qualcomm products

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

qualcomm

CWE-617

NVD

Published: 2022-04-01

Updated: 2022-04-08

Summary

Possible assertion due to improper validation of invalid NR CSI-IM resource configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Ar8035 Firmware - Qualcomm Qca6390 Firmware - Qualcomm Qca6391 Firmware - Qualcomm Qca6426 Firmware - Qualcomm Qca6436 Firmware - Qualcomm Qca6574A Firmware - Qualcomm Qca6574Au Firmware - Qualcomm Qca6595Au Firmware - Qualcomm Qca6696 Firmware - Qualcomm Qca8081 Firmware - Qualcomm Qca8337 Firmware - Qualcomm Qcx315 Firmware - Qualcomm Sa515M Firmware - Qualcomm SD 8 Gen1 5G Firmware - Qualcomm Sd480 Firmware - Qualcomm Sd690 5G Firmware - Qualcomm Sd750G Firmware - Qualcomm Sd765 Firmware - Qualcomm Sd765G Firmware - Qualcomm Sd768G Firmware - Qualcomm Sd865 5G Firmware - Qualcomm Sd870 Firmware - Qualcomm Sd888 Firmware - Qualcomm Sdx55 Firmware - Qualcomm Sdx55M Firmware - Qualcomm Sdx65 Firmware - Qualcomm Sdxr2 5G Firmware - Qualcomm Sm6375 Firmware - Qualcomm Sm7250P Firmware - Qualcomm Sm7315 Firmware - Qualcomm Wcd9341 Firmware - Qualcomm Wcd9360 Firmware - Qualcomm Wcd9370 Firmware - Qualcomm Wcd9375 Firmware - Qualcomm Wcd9380 Firmware - Qualcomm Wcd9385 Firmware - Qualcomm Wcn3988 Firmware - Qualcomm Wcn3991 Firmware - Qualcomm Wcn3998 Firmware - Qualcomm Wcn6750 Firmware - Qualcomm Wcn6850 Firmware - Qualcomm Wcn6851 Firmware - Qualcomm Wcn6855 Firmware - Qualcomm Wcn6856 Firmware - Qualcomm Wsa8810 Firmware - Qualcomm Wsa8815 Firmware - Qualcomm Wsa8830 Firmware - Qualcomm Wsa8835 Firmware -	48
Hardware	Qualcomm Qualcomm Ar8035 - Qualcomm Qca6390 - Qualcomm Qca6391 - Qualcomm Qca6426 - Qualcomm Qca6436 - Qualcomm Qca6574A - Qualcomm Qca6574Au - Qualcomm Qca6595Au - Qualcomm Qca6696 - Qualcomm Qca8081 - Qualcomm Qca8337 - Qualcomm Qcx315 - Qualcomm Sa515M - Qualcomm SD 8 Gen1 5G - Qualcomm Sd480 - Qualcomm Sd690 5G - Qualcomm Sd750G - Qualcomm Sd765 - Qualcomm Sd765G - Qualcomm Sd768G - Qualcomm Sd865 5G - Qualcomm Sd870 - Qualcomm Sd888 - Qualcomm Sdx55 - Qualcomm Sdx55M - Qualcomm Sdx65 - Qualcomm Sdxr2 5G - Qualcomm Sm6375 - Qualcomm Sm7250P - Qualcomm Sm7315 - Qualcomm Wcd9341 - Qualcomm Wcd9360 - Qualcomm Wcd9370 - Qualcomm Wcd9375 - Qualcomm Wcd9380 - Qualcomm Wcd9385 - Qualcomm Wcn3988 - Qualcomm Wcn3991 - Qualcomm Wcn3998 - Qualcomm Wcn6750 - Qualcomm Wcn6850 - Qualcomm Wcn6851 - Qualcomm Wcn6855 - Qualcomm Wcn6856 - Qualcomm Wsa8810 - Qualcomm Wsa8815 - Qualcomm Wsa8830 - Qualcomm Wsa8835 -	48

Common Weakness Enumeration (CWE)

CWE-617 - Reachable Assertion

References

https://www.qualcomm.com/company/product-security/bulletins/march-2022-bulletin